Stack Exchange network consists of 183 Q&A communities including Stack Overflow, the largest, most trusted online community for developers to learn, share their knowledge, and build their careers.
Visit Stack Exchange
Stack Internal
Knowledge at work
Bring the best of human thought and AI automation together at your work.
Explore Stack InternalLet's say there is a system that can set ip aclIP ACL for security. If administrator can't bypass ip aclIP ACL, account may by locked up when machine or network ipIP changed But if administrator can bypass ip aclIP ACL, then an attacker can bypass ip aclIP ACL when got administrator account. Ip acl gotIP ACL gets meaningless.
Is there good way to mitigate both situationsituations?
Let's say there is a system that can set ip acl for security. If administrator can't bypass ip acl, account may locked up when machine or network ip changed But if administrator can bypass ip acl, attacker can bypass ip acl when got administrator account. Ip acl got meaningless
Is there good way to mitigate both situation?
Let's say there is a system that can set IP ACL for security. If administrator can't bypass IP ACL, account may by locked up when machine or network IP changed But if administrator can bypass IP ACL, then an attacker can bypass IP ACL when got administrator account. IP ACL gets meaningless.
Is there good way to mitigate both situations?
Let's say there is a system that can set ip acl for security. If administrator can't bypass ip acl, account may locked up when machine or network ip changed But if administrator can bypass ip acl, attacker can bypass ip acl when got administrator account. Ip acl got meaningless
Is there good way to mitigate both situation?
